Add news

News

We're pleased to announce the release of Netzob 0.4.1 aka "WaddlingPeccary". The pleasure to publish our latest work is enhanced by the priviledge to present it at FOSDEM 2013.

While the previous release introduced a large amount of changes, this one focuses on stability and UI. Thanks to the plugin mechanism that was introduced in the previous release, we've also added some great features such as Wireshark and Peach exporters! We've also added some new dialogs to configure the workspace, projects and to manage imported traces.

Netzob is an opensource tool for reverse engineering, traffic generation and fuzzing of communication protocols. This tool allows to infer the message format (vocabulary) and the state machine (grammar) of a protocol through passive and active processes. Its objective is to bring state of art academic researches to the operational field, by leveraging bio-informatic and grammatical inferring algorithms in a semi-automatic manner.

Netzob is suitable for reversing network protocols, structured files and system and process flows (IPC and communication with drivers and devices). Dedicated modules are provided to capture and import data in multiple contexts (network, file and process data acquisition). Once inferred, a protocol model can afterward be exported to third party tools (Peach, Scapy, Wireshark, etc.) or used in the traffic generation engine, to allow simulation of realistic and controllable communication endpoints and flows.Netzob handles different types of protocols: text protocols (like HTTP and IRC), delimiter-based protocols, fixed fields protocols (like IP and TCP) and variable-length fields protocols (like TLV-based protocols).

This release supports GTK+3 and greatly enhances the graphical interface thanks to Fabien André, Quentin Heyler and Olivier Tétard. Besides, it provides new functions dedicated to the vocabulary inference and allows better modelization of protocols. For this release, a new architecture has been designed: it allows plugin development (especially for Importers, Capturers and Exporters) and makes the source code easier to understand (thanks to the MVC pattern). This is also the first version to be completely translated in French (other languages could be added easily).

This is a major release as no less than 591 files where changed (60.148 lines added and 24.272 lines removed)! This release represents 46.000 lines of code.

Netzob 0.4.0 is available as a Python source .tar.gz or directly on Pypi. Besides, packages are available for Debian, Ubuntu, Gentoo and ArchLinux.

Netzob is an opensource tool which supports the expert in its operations of reverse engineering, evaluation and simulation of communication protocols. Its main goals are to help security evaluators to:

Assess the robustness of proprietary or unknown protocols implementation.

Create an open source implementation of a proprietary or unknown protocol.

Netzob supports the expert in a semi-automatic inferring process of any communication protocol. Hence, it includes the necessaries to passively learn the vocabulary of a protocol and to actively infer its grammar. The learnt protocol can afterward be simulated.

As you might know, the 0.4 release (aka "JumpingRhino") is not far away! Debian and Ubuntu users can give a try at that version by using the experimental package.

We would be grateful if you could test them before that Netzob release is achieved. Your feedbacks on these packages will help us. If you find any problem that concerns either the package itself or Netzob, feel free to open a new bug!

We are also looking at packagers for other distributions: Fedora, Mageia, etc.

We are pleased to announce a new release of Netzob: 0.3.3, codename "Flying Razorback".

This release greatly enhances the partitioning performances (notably thanks to a new contributor, Franck Roland) and offers many useful features such as a new visualization layer, a new search engine, more data manipulation functions, and import/export of projects and traces.

In addition to Debian and Gentoo packages, a Windows installer is also released thanks to Goulven Guiheux.As usual, this new release (including its packages) is available at : http://www.netzob.org/download.

Netzob is an opensource tool which supports the expert in its operations of reverse engineering, evaluation and simulation of communication protocols. Its main goals are to help security evaluators to:

Assess the robustness of proprietary or unknown protocols implementation.

Create an open source implementation of a proprietary or unknown protocol.

Netzob supports the expert in a semi-automatic inferring process of any communication protocol. Hence, it includes the necessaries to passively learn the vocabulary of a protocol and to actively infer its grammar. The learnt protocol can afterward be simulated.

There isn't much changes since the release candidate version, 0.3.2-rc1. Notably, this version fixes a crash in libNeedleman which occurred in some cases.

Thanks to Alexandre Pigné, this version is also the first to be officially available as a Gentoo package! All the Gentoo supporters will now be able to install Netzob in a simple manner. This package has been supplied to be integrated in the official Gentoo distribution (see bug #408013 on Gentoo).

As usual, this new release is available as a source package and as a Debian package (for Debian Squeeze and Debian unstable).

Netzob is an opensource tool which supports the expert in its operations of reverse engineering, evaluation and simulation of communication protocols. Its main goals are to help security evaluators to:

Assess the robustness of proprietary or unknown protocols implementation.

Create an open source implementation of a proprietary or unknown protocol.

Netzob supports the expert in a semi-automatic inferring process of any communication protocol. Hence, it includes the necessaries to passively learn the vocabulary of a protocol and to actively infer its grammar. The learnt protocol can afterward be simulated.

The Netzob developer team is proud to announce the availability of Netzob 0.3.2-rc1.This release includes major bug fixes to gain in stability and quality while providing multiple major enhancements. Some of the highlights :

Upgrade Vocabulary Inference :

Add Octal visualization of data

Columns are now resizable

Allows to copy message/field to clipboard

Support simple alignment

Show the current status of an alignment

Upgrade Grammar Inference :

Dedicated GUI for the automatic inferring process

Upgrade Simulator :

Specify source port for network simulator

Upgrade Import/Export and Traces Management :

Activate the management of traces

Handle cooked socket (SLL) packet format

Support of human readable format export

Extra :

The current workspace can be specified through a command line argument

Netzob is an opensource tool which supports the expert in its operations of reverse engineering, evaluation and simulation of communication protocols. Its main goals are to help security evaluators to :

Assess the robustness of proprietary or unknown protocols implementation.

Create an open source implementation of a proprietary or unknown protocol.

Netzob supports the expert in a semi-automatic inferring process of any communication protocol. Hence, it includes the necessaries to passively learn the vocabulary of a protocol and to actively infer its grammar. The learnt protocol can afterward be simulated.